CVE-2025-48926

Name of the Vulnerable Software and Affected Versions TeleMessage service through 2025-05-05

Description The issue allows attackers to discover sensitive information, including usernames, e-mail addresses, passwords, and telephone numbers, in the admin panel of the TeleMessage service. This has been exploited in the wild.

Recommendations For versions through 2025-05-05, consider restricting access to the admin panel until a fix is available. As a temporary workaround, avoid using the admin panel for sensitive operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.